Software Update Announcement from Adobe Actually Spread Malware
Spammers have unleashed an e-mail campaign that is widely spreading malicious software pretending to be upgrades for the X Suit Advanced and Acrobat Reader of Adobe, published Naked Security on December 6, 2011.
Posing as messages from Adobe, the e-mails distributing fresh Trojan have subject lines like "Adobe Software Critical Upgrade Notification ID: M29MGJW7CN3" along with a sender's address that's spoofed to make the messages seemingly originate from "Adobe Update Notification email@example.com.
Moreover, the e-mails contain a .zip archive as an attachment, which carries a Zeus Trojan variant that software companies McAfee detected as PWS-Zbot.gen.hb, Microsoft as PWS:Win32/Zbot.gen!Y, and Norman as W32/Zbot.YFP, all capable of capturing banking details out of users' PCs they contaminate.
Expressing the pleasure of Adobe for declaring the upgrades, the fake Adobe electronic mail states that these include features comprising joint working over borders, crafting refined, high-stuffed PDF files of printable quality, making sure visual reliability, sharing as also encoding PDF files better, and utilizing document exchange along with archival in their standard form.
The message body further tells the recipient for viewing the attachment towards improving and updating his work productivity.
In conclusion, the e-mail in its original way mentions the copyright details and other related information from Adobe Systems Incorporated.
Moreover, Security Company Sophos said that the e-mail arrived carrying one attachment labeled "AdobeSystems-Software_Critica Update Dec_2011-[random].zip," while included the 200KB sized huge executable file named "Adobe Systems Software Critical Update Dec 2011.exe."
Senior Technology Consultant Graham Cluley with Sophos said that all the e-mails spammed had slight variations among them, including their captions having various reference numbers, just like for the message bodies and the attachments' name. Naked Security published this.
However, as precautionary measure, PC-users are reiterated that Adobe doesn't ever dispatch software upgrades through attachments in e-mail. Moreover, for obtaining any of Adobe's lawful updates, users must access the company's authorized website.
Importantly, Adobe software had dual troubles during the identical monthly-period. One was the fake e-mail notification described in this article, and the other was a "0-day" security flaw within Adobe Reader. Hackers by now are attacking Reader 9.x and Acrobat on Windows-PCs.
Related article: Software Giant Microsoft Becoming More Spam Affectionate
» SPAMfighter News - 15-12-2011